As part of a new initiative to notify users of leaked credentials Jigsaw Security a member of SLC Security notified Cornell of a security issue. The response from Tom McMahon was interesting.
Quote:
"Stop scaring our users."
The interesting thing is that Cornell has been hacked numerous times as evidenced by the following:
http://www.databreaches.net/u-of-hawaii-and-cornell-university-hacked-by-marxistattorney/
http://pastebin.com/GRTDZ6Ns
http://timesofindia.indiatimes.com/tech/it-services/Indian-student-in-Cornell-University-hacks-into-ICSE-ISC-database/articleshow/20450666.cms
We could go on and on but we can certainly understand their reluctance to respond to notifications. Hopefully the end users are more concerned about these disclosures than the administration.
The purpose of this page is to provide awareness to individuals and organizations that are leaking information and the information of their customers. The entities listed on this site are verified to be leaking personal information sometimes without the company even being aware. SLC Security is now owned and operated by Jigsaw Security Enterprise. We are currently in process and as such this blog will eventually be taken offline and merged with Jigsaw Security resources.
Thursday, February 25, 2016
Saturday, February 20, 2016
American Museum of Natural History
Looks to us like information from this site has been pulled down by hackers. We are notifying the affected users...